$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: achth3lk+y5wRXP6j0rLeqJp88clip71TrYIiaburX4= Subject key identifier: A6:83:B4:C8:09:C9:C6:49:8F:12:1E:A6:5D:AB:3B:E2:11:F8:2D:5E Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 11F9 Signing time: Sun 02 Nov 2025 17:41:52 +0000 Manifest this update: Sun 02 Nov 2025 17:41:51 +0000 Manifest next update: Sun 09 Nov 2025 17:41:51 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: LaGJeVK8gGZkksiSQ/6mFhPZrQFRySjfLCpo4n+rCS4=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Nov 2 17:41:51 2025 GMT Not After : Nov 9 17:41:51 2025 GMT Subject: CN=690797df-c7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:9c:eb:b8:13:bb:6d:5d:4b:2c:74:cd:f4: 1c:16:88:00:9c:19:fd:6c:2c:64:5f:89:c8:dc:ba: de:44:ac:95:00:e8:8c:cb:c8:fc:7e:45:13:08:1c: 81:14:24:e0:2e:dc:27:0b:3b:9d:ba:68:1a:d3:8c: 59:d0:78:fe:c2:00:ef:ea:20:eb:a2:76:3a:5a:30: e4:1f:aa:b7:4b:51:ca:8a:2d:af:eb:5f:62:24:8d: ba:44:af:c4:7a:c4:4e:03:d0:bd:48:9d:8a:01:c0: 81:08:1e:b5:a2:c6:3f:6e:4e:bd:45:2c:4d:2b:fb: 01:ab:25:e2:87:ae:04:e8:29:85:8d:49:3f:6b:ac: c6:68:ca:1f:36:9a:e2:53:f2:e1:61:3c:dc:64:e1: 57:03:ce:90:3d:d0:f6:4e:92:9a:33:4f:e3:c3:5e: 0e:53:d4:67:73:a6:52:1d:d6:23:b4:b9:18:fc:30: 25:89:0d:cc:40:06:22:85:2b:f4:26:85:c7:3b:41: 01:75:72:b5:39:b5:04:30:26:3c:9d:16:95:09:ca: ea:cb:a1:9a:a3:41:08:9d:de:f2:18:9c:3c:86:74: 8c:65:3a:bb:bb:6f:55:e3:98:bf:16:66:06:d2:bb: ad:88:37:e1:82:15:70:8f:19:a1:c1:cf:ea:93:01: 9b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:83:B4:C8:09:C9:C6:49:8F:12:1E:A6:5D:AB:3B:E2:11:F8:2D:5E X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4e:b2:3b:d6:2d:af:9f:83:04:66:12:7f:71:60:d1:10:31: 44:a1:3f:b7:17:dd:cb:ad:c0:0f:a6:07:dc:8c:53:1f:ba:e9: fe:b6:b5:d7:c4:27:6f:b0:42:74:2b:53:b0:f0:1f:22:03:e8: a0:bc:e5:56:6e:93:f8:83:7c:d2:99:9c:47:48:8c:25:c0:5b: 2a:98:87:66:96:37:c1:d4:11:ac:cd:01:85:e7:5e:bf:4d:9c: 13:ac:2c:91:bf:00:58:ca:21:6e:5c:47:9c:c5:f7:59:9a:2b: e9:42:6a:32:3f:e2:fa:0e:14:27:92:99:d8:ae:72:b8:6f:41: 8f:2d:2c:51:db:13:ee:6d:5a:b1:cb:9b:45:5c:df:12:1b:8a: ee:e0:4b:6d:65:a0:a8:f1:45:0e:91:41:ae:32:3e:a3:91:fd: b8:de:09:8c:49:f9:84:d5:45:67:5d:c2:67:c2:c9:65:43:f4: 5c:40:9b:76:e0:0f:72:c4:8d:3b:22:c2:62:ed:33:5b:51:4b: b9:e5:b1:90:19:41:c1:60:6b:69:59:96:6c:1a:69:81:af:81: 8a:42:10:2c:92:af:9b:fd:3e:16:36:d6:64:76:33:e3:12:1b: cd:14:cb:f4:74:ec:59:7d:6b:9c:c3:37:c6:01:0f:c7:2c:29: 52:91:e6:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUxMTAyMTc0MTUxWhcNMjUxMTA5MTc0MTUxWjAYMRYwFAYD VQQDEw02OTA3OTdkZi1jN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXOc67gTu21dSyx0zfQcFogAnBn9bCxkX4nI3LreRKyVAOiMy8j8fkUTCByB FCTgLtwnCzudumga04xZ0Hj+wgDv6iDronY6WjDkH6q3S1HKii2v619iJI26RK/E esROA9C9SJ2KAcCBCB61osY/bk69RSxNK/sBqyXih64E6CmFjUk/a6zGaMofNpri U/LhYTzcZOFXA86QPdD2TpKaM0/jw14OU9Rnc6ZSHdYjtLkY/DAliQ3MQAYihSv0 JoXHO0EBdXK1ObUEMCY8nRaVCcrqy6Gao0EInd7yGJw8hnSMZTq7u29V45i/FmYG 0rutiDfhghVwjxmhwc/qkwGbHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaDtMgJ ycZJjxIepl2rO+IR+C1eMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASTrI71i2vn4MEZhJ/cWDREDFEoT+3F93LrcAPpgfcjFMfuun+trXX xCdvsEJ0K1Ow8B8iA+igvOVWbpP4g3zSmZxHSIwlwFsqmIdmljfB1BGszQGF516/ TZwTrCyRvwBYyiFuXEecxfdZmivpQmoyP+L6DhQnkpnYrnK4b0GPLSxR2xPubVqx y5tFXN8SG4ru4EttZaCo8UUOkUGuMj6jkf243gmMSfmE1UVnXcJnwsllQ/RcQJt2 4A9yxI07IsJi7TNbUUu55bGQGUHBYGtpWZZsGmmBr4GKQhAskq+b/T4WNtZkdjPj EhvNFMv0dOxZfWucwzfGAQ/HLClSkeaJ -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:46 2025 by rpki-client